PT-2025-19985 · Goshs · Goshs

Guilhem7

Published

2025-05-06

Updated

2025-05-20

CVE-2025-46816

CVSS v3.1

9.4

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions goshs versions 0.3.4 through 1.0.4

Description The issue allows anyone to execute commands on the server when goshs is run without arguments. This is due to the dispatchReadPump function not checking the -c option, allowing arbitrary command execution through websockets.

Recommendations For goshs versions 0.3.4 through 1.0.4, update to version 1.0.5 to resolve the issue. As a temporary workaround, consider disabling the dispatchReadPump function until a patch is available. Avoid running goshs without arguments to minimize the risk of exploitation.

Exploit

Fix

Improper Access Control

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-77

Related Identifiers

CVE-2025-46816

GHSA-RWJ2-W85G-5CMM

GO-2025-3672

OPENSUSE-SU-2025:15135-1

Affected Products

Goshs

PT-2025-19985 · Goshs · Goshs

CVE-2025-46816

Weakness Enumeration

Related Identifiers

Affected Products

References · 26